package com.googlecode.restitory.gae.filter;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

public class AccessFilter implements Filter {

	@Override
	public void init(FilterConfig filterConfig) throws ServletException {

	}

	@Override
	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException,
			ServletException {
		HttpServletRequest req = (HttpServletRequest) request;
		HttpServletResponse resp = (HttpServletResponse) response;

		String auth = req.getHeader("Authorization");
		if (!"Basic YWRtaW46aGFyZG5lc3M=".equals(auth)) {
			resp.setHeader("WWW-Authenticate", "Basic realm=\"AuthRealm\"");
			resp.sendError(401, "error");
			return;
		}

		chain.doFilter(request, response);
	}

	@Override
	public void destroy() {

	}

}
